Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/89BDECCC543A11F184B38B0ACF1D38B0.roa
File: 89BDECCC543A11F184B38B0ACF1D38B0.roa (raw, json)
Hash identifier: s7gbiey03YrZilTjYrrcKyNoT1c0OGyz5oUtqSvANJ4=
Subject key identifier: 3F:B7:E9:B4:DB:2A:24:1F:60:24:05:B6:7E:CD:B5:AB:65:86:F6:B3
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 188E
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/89BDECCC543A11F184B38B0ACF1D38B0.roa
Signing time: Wed 20 May 2026 10:56:22 +0000
ROA not before: Wed 20 May 2026 10:56:17 +0000
ROA not after: Sat 20 May 2028 10:56:17 +0000
asID: 212890
IP address blocks: 102.165.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 May 2026 01:19:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6286 (0x188e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: May 20 10:56:17 2026 GMT
Not After : May 20 10:56:17 2028 GMT
Subject: CN=6a0d9356-56af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:48:b3:f6:8e:b2:c7:c2:96:df:91:29:cd:24:
23:ce:5e:1a:6b:8f:bd:f0:b3:2f:c2:d2:30:4a:9c:
af:0e:67:f1:91:e9:78:ca:cb:f4:7b:ca:a3:84:ba:
ea:a3:f8:66:14:b0:67:b7:cc:a8:bf:1c:44:7e:77:
37:67:7b:f5:43:34:e4:9b:39:12:d9:f6:25:17:0e:
60:54:e9:21:7a:9a:e9:c4:c5:80:1d:b9:1f:17:93:
e0:1b:f9:67:9d:79:c1:58:c1:aa:b4:4c:fb:1f:7a:
75:ba:b7:0e:46:e6:1a:dc:d5:fa:71:51:2d:5b:74:
40:f4:85:72:fd:8f:38:64:6a:3a:8c:d7:3d:d5:62:
23:8c:dc:33:b6:64:fe:6a:82:2a:25:56:7d:86:1a:
b7:c4:11:b2:8a:c4:d6:eb:9b:38:3d:bf:ba:df:d8:
f7:49:9c:4c:f5:38:20:f7:f7:33:36:88:88:a2:0c:
ff:db:e8:36:5b:27:b1:6b:b8:b7:14:c2:36:4e:e2:
03:23:81:73:de:2a:07:36:28:bf:82:28:1e:09:64:
f5:32:4c:d4:c1:8c:11:9b:17:94:23:4f:c0:11:54:
d9:ff:8c:6d:97:81:52:75:6d:46:e9:88:dd:41:c2:
75:c5:fd:37:f9:19:4b:cf:ed:a1:49:45:16:c8:3a:
8c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:B7:E9:B4:DB:2A:24:1F:60:24:05:B6:7E:CD:B5:AB:65:86:F6:B3
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/89BDECCC543A11F184B38B0ACF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.41.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:c0:a1:c7:42:4e:ee:77:96:cc:76:11:15:8f:f6:28:7d:05:
c3:ea:40:84:ac:96:e2:60:db:e3:26:10:77:b2:50:b1:28:6b:
4c:61:2a:71:31:29:01:cc:20:25:fd:a7:9d:d3:03:7d:2a:c4:
64:3c:b4:a2:7d:a6:52:b0:df:c8:4f:bd:bf:51:3f:1c:71:f9:
84:25:e4:b6:a4:6b:a1:af:9a:56:1c:b6:12:44:d7:f1:47:14:
67:39:54:c8:7d:62:ff:47:16:5a:fa:9e:f1:5b:a9:56:89:07:
44:2a:60:c2:49:8b:68:ed:51:2f:2a:35:4b:04:dd:a0:c2:d3:
8f:34:5d:6b:d3:65:f3:80:a3:bd:4c:e7:32:58:f4:d1:bf:2d:
95:f2:53:59:45:62:c6:26:7c:6c:7a:f6:e0:9a:04:05:13:73:
0b:11:17:96:9e:4f:64:76:7e:0c:45:68:a7:fd:fa:e5:ec:35:
6c:68:ab:98:55:66:17:3e:2f:05:53:1c:b3:16:bd:30:11:ad:
2c:78:74:c7:eb:37:bc:50:e4:5b:ef:47:9a:cd:40:e4:fa:f5:
8d:4a:b0:ef:49:92:9e:bc:a0:f8:be:83:4f:48:1c:32:05:9b:
55:47:e6:d2:ce:7c:ce:53:5c:23:7a:f4:29:9e:e1:53:b2:80:
f3:5e:01:95
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICGI4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QzU4RDZBRjExMC8GA1UEBRMoNDhBMkYyQzRBQTRBRUEzOUJFNDZCRkU1Rjk5Qzky
NjI5QkJFRDhGQzAeFw0yNjA1MjAxMDU2MTdaFw0yODA1MjAxMDU2MTdaMBgxFjAU
BgNVBAMTDTZhMGQ5MzU2LTU2YWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC+SLP2jrLHwpbfkSnNJCPOXhprj73wsy/C0jBKnK8OZ/GR6XjKy/R7yqOE
uuqj+GYUsGe3zKi/HER+dzdne/VDNOSbORLZ9iUXDmBU6SF6munExYAduR8Xk+Ab
+WedecFYwaq0TPsfenW6tw5G5hrc1fpxUS1bdED0hXL9jzhkajqM1z3VYiOM3DO2
ZP5qgiolVn2GGrfEEbKKxNbrmzg9v7rf2PdJnEz1OCD39zM2iIiiDP/b6DZbJ7Fr
uLcUwjZO4gMjgXPeKgc2KL+CKB4JZPUyTNTBjBGbF5QjT8ARVNn/jG2XgVJ1bUbp
iN1BwnXF/Tf5GUvP7aFJRRbIOoxVAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUP7fp
tNsqJB9gJAW2fs21q2WG9rMwHwYDVR0jBBgwFoAUSKLyxKpK6jm+Rr/l+ZySYpu+
2PwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4QUVBMjI4L1NLTHl4
S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1NLTHl4S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4
QUVBMjI4Lzg5QkRFQ0NDNTQzQTExRjE4NEIzOEIwQUNGMUQzOEIwLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmpSkwDQYJKoZIhvcNAQEL
BQADggEBADrAocdCTu53lsx2ERWP9ih9BcPqQISsluJg2+MmEHeyULEoa0xhKnEx
KQHMICX9p53TA30qxGQ8tKJ9plKw38hPvb9RPxxx+YQl5Laka6GvmlYcthJE1/FH
FGc5VMh9Yv9HFlr6nvFbqVaJB0QqYMJJi2jtUS8qNUsE3aDC0480XWvTZfOAo71M
5zJY9NG/LZXyU1lFYsYmfGx69uCaBAUTcwsRF5aeT2R2fgxFaKf9+uXsNWxoq5hV
Zhc+LwVTHLMWvTARrSx4dMfrN7xQ5FvvR5rNQOT69Y1KsO9Jkp68oPi+g09IHDIF
m1VH5tLOfM5TXCN69Cme4VOygPNeAZU=
-----END CERTIFICATE-----
Generated at Thu May 21 16:09:02 2026 by rpki-client